-
Notifications
You must be signed in to change notification settings - Fork 94
Expand file tree
/
Copy pathhome.html
More file actions
257 lines (239 loc) · 9.33 KB
/
home.html
File metadata and controls
257 lines (239 loc) · 9.33 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
{% extends "main.html" %}
{% block tabs %}
{{ super() }}
<style>
/* Hide header title on landing page */
.md-header__topic { display: none; }
</style>
<!-- Hero -->
<section class="kf-hero">
<div class="kf-hero__inner md-grid">
<div class="kf-hero__content">
<img src="{{ 'assets/images/kingfisher_logo.png' | url }}" alt="Kingfisher Logo" class="kf-hero__logo" width="126" height="173">
<h1 class="kf-hero__title">Kingfisher</h1>
<p class="kf-hero__subtitle">Open Source Secret Scanner with Live Validation</p>
<p class="kf-hero__tagline">
Detect, validate, and revoke leaked credentials across your codebase,
Git history, cloud storage, and developer platforms.
Built in Rust by MongoDB.
</p>
<div class="kf-hero__actions">
<a href="{{ 'getting-started/installation/' | url }}" class="md-button md-button--primary">
Get Started
</a>
<a href="https://github.com/mongodb/kingfisher" class="md-button">
View on GitHub
</a>
</div>
</div>
</div>
</section>
<!-- Stats bar -->
<section class="kf-stats">
<div class="kf-stats__inner md-grid">
<div class="kf-stats__item">
<span class="kf-stats__number">942</span>
<span class="kf-stats__label">Detection Rules</span>
</div>
<div class="kf-stats__item">
<span class="kf-stats__number">39</span>
<span class="kf-stats__label">Access Map Providers</span>
</div>
<div class="kf-stats__item">
<span class="kf-stats__number">15+</span>
<span class="kf-stats__label">Scan Targets</span>
</div>
<div class="kf-stats__item">
<span class="kf-stats__number">34</span>
<span class="kf-stats__label">Revocation Providers</span>
</div>
</div>
</section>
<!-- Features -->
<section class="kf-features">
<div class="kf-features__inner md-grid">
<h2 class="kf-section__title">Why Kingfisher?</h2>
<div class="kf-features__grid">
<div class="kf-feature">
<h3>Scan Everything</h3>
<p>
Files, Git repos, GitHub, GitLab, Azure Repos, Bitbucket, Gitea,
Hugging Face, Docker images, AWS S3, Google Cloud Storage, Jira,
Confluence, Slack, and Microsoft Teams.
</p>
</div>
<div class="kf-feature">
<h3>Live Validation</h3>
<p>
Automatically validate discovered credentials against provider APIs.
Eliminate false positives by confirming which secrets are actually live
and active.
</p>
</div>
<div class="kf-feature">
<h3>Blast Radius Mapping</h3>
<p>
Go beyond detection. Map leaked keys to their effective cloud identities
and exposed resources with <code>--access-map</code>.
See exactly what an attacker could access.
</p>
</div>
<div class="kf-feature">
<h3>Direct Revocation</h3>
<p>
Revoke compromised credentials directly from the CLI for 34 provider families
including GitHub, GitLab, Slack, AWS, GCP, Heroku, and Cloudflare.
</p>
</div>
<div class="kf-feature">
<h3>Open Source</h3>
<p>
Apache 2.0 licensed. Free to use, modify, and distribute. No vendor
lock-in, no usage limits, no telemetry. Fully auditable codebase
backed by MongoDB.
</p>
</div>
<div class="kf-feature">
<h3>Built for Accuracy</h3>
<p>
Lightweight parser-based context verification across 16 supported languages reduces false positives
at the detection layer. Combined with entropy filtering, checksum verification,
and live validation, Kingfisher delivers high-signal results you can act on.
</p>
</div>
<div class="kf-feature">
<h3>Built for AI</h3>
<p>
Detects and validates tokens for 35+ AI/ML providers including OpenAI,
Anthropic, Google Gemini, Mistral, Cohere, and more. Purpose-built TOON
output format for token-efficient LLM and agent workflows.
</p>
</div>
<div class="kf-feature">
<h3>Built for Speed</h3>
<p>
Rust-powered with Intel Hyperscan SIMD-accelerated regex. Multithreaded
scanning handles massive codebases while making minimal network requests
through intelligent validation.
</p>
</div>
</div>
</div>
</section>
<!-- Benchmark -->
<section class="kf-benchmark">
<div class="kf-benchmark__inner md-grid">
<h2 class="kf-section__title">Performance</h2>
<p class="kf-section__desc">
Kingfisher scans the Linux kernel in 205 seconds and the GitLab monorepo
with just 17 HTTP validation requests. Intelligent validation means fewer
API calls and faster results at scale.
</p>
<img src="{{ 'assets/images/runtime-comparison.png' | url }}" alt="Kingfisher Runtime Comparison across major open source repositories" class="kf-benchmark__chart">
<p class="kf-benchmark__link">
<a href="{{ 'reference/comparison/' | url }}">See full benchmark methodology and results</a>
</p>
</div>
</section>
<!-- Scan Targets -->
<section class="kf-targets">
<div class="kf-targets__inner md-grid">
<h2 class="kf-section__title">Scan Targets</h2>
<div class="kf-targets__grid">
<div class="kf-target">
<img src="{{ 'assets/icons/files.svg' | url }}" alt="Files" height="40">
<span>Files / Dirs</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/local-git.svg' | url }}" alt="Git" height="40">
<span>Local Git</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/github.svg' | url }}" alt="GitHub" height="40">
<span>GitHub</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/gitlab.svg' | url }}" alt="GitLab" height="40">
<span>GitLab</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/azure-devops.svg' | url }}" alt="Azure Repos" height="40">
<span>Azure Repos</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/bitbucket.svg' | url }}" alt="Bitbucket" height="40">
<span>Bitbucket</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/gitea.svg' | url }}" alt="Gitea" height="40">
<span>Gitea</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/huggingface.svg' | url }}" alt="Hugging Face" height="40">
<span>Hugging Face</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/docker.svg' | url }}" alt="Docker" height="40">
<span>Docker</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/jira.svg' | url }}" alt="Jira" height="40">
<span>Jira</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/confluence.svg' | url }}" alt="Confluence" height="40">
<span>Confluence</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/slack.svg' | url }}" alt="Slack" height="40">
<span>Slack</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/teams.svg' | url }}" alt="Microsoft Teams" height="40">
<span>Teams</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/aws-s3.svg' | url }}" alt="AWS S3" height="40">
<span>AWS S3</span>
</div>
<div class="kf-target">
<img src="{{ 'assets/icons/gcs.svg' | url }}" alt="Google Cloud Storage" height="40">
<span>Cloud Storage</span>
</div>
</div>
</div>
</section>
<!-- Install -->
<section class="kf-install">
<div class="kf-install__inner md-grid">
<h2 class="kf-section__title">Install in Seconds</h2>
<div class="kf-install__tabs">
<div class="kf-install__tab">
<h4>Homebrew</h4>
<div class="highlight"><pre><code>brew install kingfisher</code></pre></div>
</div>
<div class="kf-install__tab">
<h4>PyPI</h4>
<div class="highlight"><pre><code>uv tool install kingfisher-bin</code></pre></div>
</div>
<div class="kf-install__tab">
<h4>Docker</h4>
<div class="highlight"><pre><code>docker run --rm -v "$PWD":/src ghcr.io/mongodb/kingfisher:latest scan /src</code></pre></div>
</div>
<div class="kf-install__tab">
<h4>Script</h4>
<div class="highlight"><pre><code>curl -sSL https://raw.githubusercontent.com/mongodb/kingfisher/main/scripts/install-kingfisher.sh | bash</code></pre></div>
</div>
</div>
<div class="kf-install__cta">
<a href="{{ 'getting-started/installation/' | url }}" class="md-button md-button--primary">
Full Installation Guide
</a>
</div>
</div>
</section>
{% endblock %}
{% block content %}{% endblock %}
{% block footer %}
{{ super() }}
{% endblock %}